In this article, we will see how to add a service accounts key in Google Cloud in 7 Easy Steps. Many times you might got a scenario where you need to access Google Cloud resources programmatically or deploy or run some piece of code using a script or program. All these tasks can only be accomplished if you generate and use a Service Accounts Key or else GCP won't allow to perform any operation on its resources. Here we are going to look all the steps in detail required to add a Service Account Key in GCP. More on Google Cloud docs.
How to Add a Service Accounts Key in Google Cloud
Step 1: Prerequisites
a) You should have a valid Google Email ID and Password.
b) You should have access to Create Service Accounts and add Keys.
Step 2: Go to Service Accounts
In the first step, you need to go to Service Accounts from Google Cloud Dashboard as shown below. Click on
IAM & Admin->Service Accounts.
Step 3: Create Service Account
You will see a screen like below. Here you need to click on
Create Service Account.
Then provide the
Service account name and
Service Account ID as shown below. For our example we are using
sample-account as Service Account name and
firstname.lastname@example.org as Service Account ID. Once given, click on
Step 4: Add Role(Optional)
Here you can see an optional step to Grant this Service Account access to perform some specific tasks. For example, to run cloud build script we need to assign
Cloud Build Service Account Role as shown below. If you don't want to assign, then you can just leave it and Click on
Step 5: Grant Users Access to this Service Account(Optional)
This is also an optional step where you can Grant User access to this service account. For now, we are leaving it blank and directly Clicking on
This will create our required Service Account as shown below. You can also notice from below screen that as of now there are no keys added to this account. So our next step is to Create and add a key here.
Step 6: Click on Manage Keys
To create a new key, you need to select the earlier created Service account and then click on 3 dot showing at the extreme right end. Here you need to select
Manage Keys option as shown below.
After clicking on
Manage Keys, you will get below option to
add key. Once you click the down arrow showing next to
Add Key option, you will see an option to
Create new key. You need to click on this option.
Step 7: Create JSON/P12 Key
Finally, you need to select the type of key you need to generate. Since here we need to generate private key in JSON format so we will click the
JSON radio button and then click on
Create. It will download the private key in your local system in
.json format. Now you can go ahead and use this key to access Google Cloud Resources programmatically.